FreeBSD recommends not using base unbound for an authoritative server

Andrew Berg aberg010 at
Wed Mar 18 16:11:49 UTC 2015

On 2015.03.18 10:32, Chris Stankevitz wrote:
> On Tue, Mar 17, 2015 at 4:29 PM, Jungle Boogie <jungleboogie0 at> wrote:
>> I use unbound from base _only_ at home for recursive DNS stuff. If I were to
>> make it authoritative for a domain, I'd use ports or packages because they
>> are updated more frequently over what's it base.
> Mr. Boogie,
> Thank you for your reply.  Are you referring to security?  Is this the
> is a correct interpretation of what you are saying:
> "In general, the FreeBSD base software is untrustworthy because it is
> infrequently updated.  Someone who is interested in security should
> avoid the FreeBSD base packages and use ports wherever possible."
FreeBSD base gets security fixes. Using something from ports will get you a
different version that is updated on a different schedule.

That quote sounds like it came from a certain well-known troll blog.

More information about the freebsd-questions mailing list